$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32322d3232203d3e203538383334.roa File: 3230322e34312e3135322e302f32322d3232203d3e203538383334.roa (raw, json) Hash identifier: XaJzJb9eUd+kmvH/ZQyTu8LXtqPHpbXPuRyXM039t3E= Subject key identifier: 05:31:41:93:8E:26:C1:4F:A7:DC:60:57:CA:16:B1:9E:DB:DA:79:9D Certificate issuer: /CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Certificate serial: 6BBC5EE4B1D6C776B8792AE1789105854F69F9D2 Authority key identifier: 32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32322d3232203d3e203538383334.roa Signing time: Fri 24 Apr 2026 03:34:10 +0000 ROA not before: Fri 24 Apr 2026 03:29:10 +0000 ROA not after: Fri 23 Apr 2027 03:34:10 +0000 asID: 58834 IP address blocks: 202.41.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:bc:5e:e4:b1:d6:c7:76:b8:79:2a:e1:78:91:05:85:4f:69:f9:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Validity Not Before: Apr 24 03:29:10 2026 GMT Not After : Apr 23 03:34:10 2027 GMT Subject: CN=053141938E26C14FA7DC6057CA16B19EDBDA799D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:62:6b:89:48:d2:16:02:50:09:2a:d8:a8:60: ad:e3:c7:66:fb:8c:39:20:9d:44:65:c0:32:9b:ee: 7d:54:5d:ae:f4:3c:7c:74:e7:6f:69:2b:29:32:b0: 97:23:56:aa:55:0d:4a:7d:75:ee:33:97:f1:0b:f8: 5b:39:0e:87:ba:3e:81:47:da:79:fe:39:b4:42:54: 79:93:d9:26:e2:39:41:77:45:12:1b:12:f0:0b:60: 7a:ff:22:6a:67:97:b9:87:9d:34:51:12:20:2a:94: c6:f4:73:88:99:74:ae:9a:62:73:5d:1c:e1:fd:57: 2f:7c:19:b0:fd:ad:53:1b:3e:89:6f:f4:bb:26:e4: 7a:da:95:2c:76:20:13:6b:14:49:11:74:88:0a:2d: 53:e1:db:7f:6b:b0:03:35:e5:c4:c8:13:f7:71:90: fa:4c:d1:31:ff:76:fd:8e:af:90:e0:c8:55:52:93: 40:30:5a:15:15:e7:f6:db:4a:46:7a:13:a9:c5:15: 24:82:1e:f4:9d:40:2f:8f:3c:e4:8e:5e:66:af:ed: 20:5a:37:eb:5f:75:c2:46:fe:d6:26:4e:c1:28:23: 99:f3:9c:3a:d3:0b:3e:08:a4:19:47:f3:c3:b0:d1: c2:f3:fe:25:8e:05:21:7e:e1:8e:ad:99:21:3a:ba: 14:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:31:41:93:8E:26:C1:4F:A7:DC:60:57:CA:16:B1:9E:DB:DA:79:9D X509v3 Authority Key Identifier: keyid:32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32322d3232203d3e203538383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.41.152.0/22 Signature Algorithm: sha256WithRSAEncryption 75:85:21:48:1b:94:62:7e:46:41:5f:c0:68:d2:c2:bc:9c:9f: 51:ba:c9:a9:03:3a:bf:b7:c4:18:bb:36:69:59:42:b1:af:15: 54:d0:79:04:98:1b:65:cf:22:cd:9c:ab:cd:50:65:16:2c:e9: 42:14:f8:8b:93:20:6d:fb:23:cb:19:8a:eb:32:92:6b:2a:ed: 23:13:72:17:d9:38:28:50:3c:86:4a:f5:45:27:f5:15:ca:dc: 0c:c7:ac:a8:49:fe:1e:b5:1b:22:37:2f:d2:73:be:34:e3:c1: 59:6d:49:8b:39:ba:03:49:f0:a6:c4:21:7b:3e:1d:a3:60:2f: bc:9e:a6:fb:46:2b:25:2c:40:c5:be:f8:c3:e0:41:88:be:ae: 37:a9:95:2b:1a:23:3d:89:b5:d2:b4:d7:0a:f6:06:a5:c7:88: 2d:21:3a:41:cd:01:81:9c:3c:6d:78:9f:1a:d5:f3:41:ea:78: 0d:1b:db:3a:ef:11:99:73:02:88:f7:12:f7:04:13:48:60:b7: e5:f0:87:2d:d9:55:f3:f4:46:9c:60:b2:ba:8a:c5:c7:c4:eb: 20:a0:4b:a0:b8:11:e3:2a:c9:9d:4f:de:b2:1b:ed:e4:17:12: cf:6a:0c:8e:52:a8:2e:86:70:25:63:d2:99:99:90:05:6c:45: 34:8f:7a:b3 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUa7xe5LHWx3a4eSrheJEFhU9p+dIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZF NThFQkM1MzAeFw0yNjA0MjQwMzI5MTBaFw0yNzA0MjMwMzM0MTBaMDMxMTAvBgNV BAMTKDA1MzE0MTkzOEUyNkMxNEZBN0RDNjA1N0NBMTZCMTlFREJEQTc5OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPYmuJSNIWAlAJKtioYK3jx2b7 jDkgnURlwDKb7n1UXa70PHx0529pKykysJcjVqpVDUp9de4zl/EL+Fs5Doe6PoFH 2nn+ObRCVHmT2SbiOUF3RRIbEvALYHr/Impnl7mHnTRREiAqlMb0c4iZdK6aYnNd HOH9Vy98GbD9rVMbPolv9Lsm5HralSx2IBNrFEkRdIgKLVPh239rsAM15cTIE/dx kPpM0TH/dv2Or5DgyFVSk0AwWhUV5/bbSkZ6E6nFFSSCHvSdQC+PPOSOXmav7SBa N+tfdcJG/tYmTsEoI5nznDrTCz4IpBlH88Ow0cLz/iWOBSF+4Y6tmSE6uhQ/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUBTFBk44mwU+n3GBXyhaxntvaeZ0wHwYDVR0j BBgwFoAUMqG5ygtOHTRe83VCQHZTxuWOvFMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTg5ODY1MDA4OTI5MTc3Ny8wLzMyQTFCOUNBMEI0RTFEMzQ1RUYzNzU0MjQwNzY1 M0M2RTU4RUJDNTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZFNThFQkM1My5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTg5ODY1MDA4OTI5MTc3Ny8wLzMyMzAzMjJlMzQz MTJlMzEzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM4MzMzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAsopmDANBgkqhkiG9w0BAQsFAAOCAQEAdYUhSBuUYn5GQV/AaNLCvJyf UbrJqQM6v7fEGLs2aVlCsa8VVNB5BJgbZc8izZyrzVBlFizpQhT4i5MgbfsjyxmK 6zKSayrtIxNyF9k4KFA8hkr1RSf1FcrcDMesqEn+HrUbIjcv0nO+NOPBWW1Jizm6 A0nwpsQhez4do2AvvJ6m+0YrJSxAxb74w+BBiL6uN6mVKxojPYm10rTXCvYGpceI LSE6Qc0BgZw8bXifGtXzQep4DRvbOu8RmXMCiPcS9wQTSGC35fCHLdlV8/RGnGCy uorFx8TrIKBLoLgR4yrJnU/eshvt5BcSz2oMjlKoLoZwJWPSmZmQBWxFNI96sw== -----END CERTIFICATE-----Generated at Wed May 13 19:36:24 2026 by rpki-client